Sign-up

VARIoT IoT exploits database

Affected products: vendor, model and version
Type can be e.g: Remote Code Execution or Denial of Service
Look up free text in title and description

VAR-E-201802-0499 No CVE Sony Playstation 4 (PS4) 4.07 Code Execution No EDB ID
Sony Playstation 4 (PS4) versions 4.07 up to but not including 4.55 bpf local kernel code execution proof of concept exploit.
VAR-E-201802-0500 No CVE Sony Playstation 4 (PS4) 4.55 Jailbreak No EDB ID
In this project you will find a full implementation of the "bpf" kernel exploit for the PlayStation 4 on 4.55. It will allow you to run arbitrary code as kernel, to allow jailbreaking and kernel-level modifications to the system. This release however, does not contain any code related to defeating anti-piracy mechanisms or running homebrew. This exploit does include a loader that listens for payloads on port 9020 and will execute them upon receival.
VAR-E-201802-0098 No CVE Sony Playstation 4 (PS4) 5.01 < 5.05 - WebKit Code Execution (PoC) - Hardware dos Exploit EDB ID: 44197
Sony Playstation 4 (PS4) 5.01 < 5.05 - WebKit Code Execution (PoC).. dos exploit for Hardware platform
VAR-E-201802-0287 No CVE Sony Playstation 4 (PS4) 4.55 - 'Jailbreak' 'setAttributeNodeNS' WebKit 5.02 / 'bpf' Kernel Loader 4.55 - Hardware remote Exploit EDB ID: 44196
Sony Playstation 4 (PS4) 4.55 - 'Jailbreak' 'setAttributeNodeNS' WebKit 5.02 / 'bpf' Kernel Loader 4.55.. remote exploit for Hardware platform
VAR-E-201802-0461 No CVE Sony Playstation 4 (PS4) 4.07 < 4.55 - 'bpf' Local Kernel Code Execution (PoC) - Hardware local Exploit EDB ID: 44177
Sony Playstation 4 (PS4) 4.07 < 4.55 - 'bpf' Local Kernel Code Execution (PoC).. local exploit for Hardware platform
VAR-E-201802-0074 No CVE Parallels Remote Application Server 15.5 - Path Traversal - Windows webapps Exploit EDB ID: 44241
Parallels Remote Application Server 15.5 - Path Traversal.. webapps exploit for Windows platform
VAR-E-201802-0155 CVE-2018-5767
 Tenda AC15 Router - Remote Code Execution - Hardware remote Exploit

Related entries in the VARIoT vulnerabilities database: VAR-201802-1227		 EDB ID: 44253
Tenda AC15 Router - Remote Code Execution. CVE-2018-5767 . remote exploit for Hardware platform
VAR-E-201802-0431 No CVE Advantech WebAccess 8.3.0 - Remote Code Execution Exploit No EDB ID
VAR-E-201802-0086 CVE-2018-6911
 Advantech WebAccess 8.3.0 - Remote Code Execution - Windows remote Exploit

Related entries in the VARIoT vulnerabilities database: VAR-201802-1104		 EDB ID: 44031
Advantech WebAccess 8.3.0 - Remote Code Execution. CVE-2018-6911 . remote exploit for Windows platform
VAR-E-201802-0404 No CVE NetEx HyperIP 6.1.0 Local File Inclusion No EDB ID
NetEx HyperIP version 6.1.0 suffers from a local file inclusion vulnerability.
VAR-E-201802-0216 No CVE NetEx HyperIP 6.1.0 Privilege Escalation No EDB ID
NetEx HyperIP version 6.1.0 suffers from a privilege escalation vulnerability.
VAR-E-201802-0487 CVE-2018-6317
 Claymore Dual GPU Miner 10.5 - Format String - Multiple dos Exploit EDB ID: 43972
Claymore Dual GPU Miner 10.5 - Format String. CVE-2018-6317 . dos exploit for Multiple platform
VAR-E-201801-0108 CVE-2017-16716
 Advantech WebAccess < 8.3 - SQL Injection - Windows webapps Exploit

Related entries in the VARIoT vulnerabilities database: VAR-201801-0138		 EDB ID: 43928
Advantech WebAccess < 8.3 - SQL Injection. CVE-2017-16716 . webapps exploit for Windows platform
VAR-E-201801-0367 No CVE Sony Playstation 3 (PS3) 4.82 - 'Jailbreak' (ROP) - Hardware local Exploit EDB ID: 44820
Sony Playstation 3 (PS3) 4.82 - 'Jailbreak' (ROP).. local exploit for Hardware platform
VAR-E-201801-0207 CVE-2018-5999
CVE-2018-6000
 AsusWRT LAN - Remote Code Execution (Metasploit) - Hardware remote Exploit

Related entries in the VARIoT vulnerabilities database: VAR-201801-1394, VAR-201801-1393		 EDB ID: 44176
AsusWRT LAN - Remote Code Execution (Metasploit). CVE-2018-6000CVE-2018-5999 . remote exploit for Hardware platform
VAR-E-201801-0208 CVE-2018-5999
CVE-2018-6000
 AsusWRT Router < 3.0.0.4.380.7743 - LAN Remote Code Execution - Hardware remote Exploit

Related entries in the VARIoT vulnerabilities database: VAR-201801-1394, VAR-201801-1393		 EDB ID: 43881
AsusWRT Router < 3.0.0.4.380.7743 - LAN Remote Code Execution. CVE-2018-6000CVE-2018-5999 . remote exploit for Hardware platform
VAR-E-201801-0117 No CVE Seagate Personal Cloud - Multiple Vulnerabilities No EDB ID
VAR-E-201801-0512 CVE-2018-5347
 Seagate Personal Cloud - Multiple Vulnerabilities - Hardware remote Exploit

Related entries in the VARIoT vulnerabilities database: VAR-201801-1503		 EDB ID: 43659
Seagate Personal Cloud - Multiple Vulnerabilities. CVE-2018-5347 . remote exploit for Hardware platform
VAR-E-201801-0486 No CVE D-Link DNS-320 ShareCenter < 1.06 - Backdoor Access Vulnerability No EDB ID
VAR-E-201801-0162 No CVE D-Link DNS-320 ShareCenter < 1.06 - Backdoor Access - Hardware remote Exploit EDB ID: 43434
D-Link DNS-320 ShareCenter < 1.06 - Backdoor Access. CVE-GTSA-00126 . remote exploit for Hardware platform